CVE-2025-66421

Опубликовано: 30 нояб. 2025

Источник: nvd

CVSS3: 5.4

EPSS Низкий

Описание

Tryton sao (aka tryton-sao) before 7.6.11 allows XSS because it does not escape completion values. This is fixed in 7.6.11, 7.4.21, 7.0.40, and 6.0.69.

Ссылки

https://discuss.tryton.org/t/security-release-for-issue-14363/8951
https://foss.heptapod.net/tryton/tryton/-/issues/14363

EPSS

Процентиль: 9%

0.00034

Низкий

5.4 Medium

CVSS3

Дефекты

CWE-79

Связанные уязвимости

CVE-2025-66421

CVSS3: 5.4

ubuntu

2 месяца назад

Tryton sao (aka tryton-sao) before 7.6.11 allows XSS because it does not escape completion values. This is fixed in 7.6.11, 7.4.21, 7.0.40, and 6.0.69.

CVE-2025-66421

CVSS3: 5.4

debian

2 месяца назад

Tryton sao (aka tryton-sao) before 7.6.11 allows XSS because it does n ...

GHSA-6qj9-2g9m-29x9

CVSS3: 5.4

github

2 месяца назад

Tryton sao allows XSS because it does not escape completion values

EPSS

Процентиль: 9%

0.00034

Низкий

5.4 Medium

CVSS3

Дефекты

CWE-79